Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/tXMxbnAhqnNRO1MZXFqBV_tHsPU.roa
File: tXMxbnAhqnNRO1MZXFqBV_tHsPU.roa (raw, json)
Hash identifier: rD00Yc71y7QEaFRuydQugv4lXXF3Vnq5myaMqXER4Bo=
Subject key identifier: B5:73:31:6E:70:21:AA:73:51:3B:53:19:5C:5A:81:57:FB:47:B0:F5
Certificate issuer: /CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Certificate serial: 01856D9D4A92EAD1DFFA772365A9166B108D
Authority key identifier: 6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/tXMxbnAhqnNRO1MZXFqBV_tHsPU.roa
Signing time: Sun 01 Jan 2023 13:55:02 +0000
ROA not before: Sun 01 Jan 2023 13:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209188
IP address blocks: 2a0f:85c1:200::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:4a:92:ea:d1:df:fa:77:23:65:a9:16:6b:10:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb3ae11a3a6a5ee1e32ea6cce1f10df231ead88
Validity
Not Before: Jan 1 13:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b573316e7021aa73513b53195c5a8157fb47b0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5f:92:5b:af:7d:f1:0b:56:b2:07:96:c2:49:
c2:94:4c:79:db:90:9a:cc:8f:b2:61:d2:50:5e:c1:
c0:5d:96:85:5b:70:7a:34:24:ac:7f:08:94:e0:ba:
b8:df:06:cd:ea:1e:75:84:5e:00:ad:15:8a:d0:86:
be:b9:3f:5c:58:81:62:b2:41:13:e2:07:d4:d4:69:
03:b5:d1:7f:f1:d9:98:9d:f9:31:79:da:22:0d:53:
2c:e5:19:59:17:e0:a1:2a:2a:6e:f6:90:d8:61:a5:
72:70:c7:92:c8:34:87:77:b1:72:7b:6a:c2:4d:50:
92:08:5e:99:95:9e:36:74:72:b9:d0:1f:05:65:22:
72:bf:58:6d:a6:21:ca:be:d8:2d:50:7b:8b:c0:9e:
0d:5a:25:b6:57:34:4c:a9:d6:88:5f:a0:ea:15:b5:
38:6c:d0:43:8f:93:ec:06:85:8e:5c:25:be:fb:0a:
08:37:2b:13:66:72:ab:1b:26:6f:62:b8:fa:a0:ae:
8c:90:05:6e:ce:c6:2e:1b:48:3a:ea:c3:35:92:ac:
d7:63:ef:57:3f:dd:39:0c:97:1e:4e:2f:85:af:06:
85:f6:bb:78:37:56:80:c4:ea:4c:e5:24:cf:63:a3:
7a:cb:fc:9e:0e:6e:29:2f:42:18:6f:ca:d1:bb:6e:
47:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:73:31:6E:70:21:AA:73:51:3B:53:19:5C:5A:81:57:FB:47:B0:F5
X509v3 Authority Key Identifier:
keyid:6B:B3:AE:11:A3:A6:A5:EE:1E:32:EA:6C:CE:1F:10:DF:23:1E:AD:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7OuEaOmpe4eMupszh8Q3yMerYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/tXMxbnAhqnNRO1MZXFqBV_tHsPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cc11e8-d51b-4679-9c6c-1ef197d6dc69/1/a7OuEaOmpe4eMupszh8Q3yMerYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:200::/44
Signature Algorithm: sha256WithRSAEncryption
58:86:0e:6b:ef:64:e6:0a:ed:de:63:ba:73:19:5e:ca:f1:79:
15:ff:73:ab:cc:40:f2:e1:cc:1d:b3:69:96:9a:88:cc:63:70:
c5:31:f0:bd:fa:ab:6b:6a:f7:a5:cd:2e:bc:cd:50:91:4b:32:
08:32:af:50:4c:7d:65:44:90:ef:2e:5b:20:bd:05:af:dd:09:
ae:8e:f8:37:6e:18:78:3d:cc:a8:8e:a0:96:d5:38:75:25:5d:
fa:3d:b9:8c:0d:c8:3b:3a:44:0a:3b:cd:ee:d2:1e:68:a5:71:
36:45:b3:25:81:af:e6:76:7e:d6:85:ab:bb:a8:5b:71:49:30:
df:0a:3a:8f:4b:1d:fe:52:5c:be:1b:0b:c1:f8:1f:48:b6:29:
54:51:c7:88:48:69:2c:05:06:4c:82:e6:bc:d7:b6:30:c0:6b:
da:7b:b2:4d:73:8f:87:d4:97:1a:66:1f:56:39:0d:2b:3b:c0:
d0:8d:d3:27:7d:c7:11:f4:88:38:34:8f:8c:02:48:ba:70:81:
b3:cd:3b:ec:5c:2c:a8:9c:30:ee:83:6c:1b:61:18:39:f7:ca:
ec:08:9b:01:f1:ba:71:20:52:b2:0e:69:51:af:a6:ef:a3:6c:
b7:3e:23:fd:92:f3:21:fe:00:a1:83:91:7a:ab:0c:1d:f7:1e:
1b:2b:e9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org